Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Wanet Telecoms Ltd on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Windows Integrated keeps returning 1

Status
Not open for further replies.
cowboy00242

cowboy00242

MIS
Dec 20, 2001
45
US
A strange one:

We have OWA set up on Ex2k, and use SSL for the website. Since we have Mac and UNIX users in the field, we only use Basic authentication for logging into/through OWA, as well as the subfolders. Typically, a user logs into the website first thing, and once that happens, OWA acts normally.

Sometimes, however, users are prompted twice for their login credentials. I've noticed that this happens when the subfolders of the website (.../Exchange, for example) demand Windows Integrated Authentication, as well as Basic. Simply removing Windows Integrated (unchecking the box) cures the problem.

But it returns at seemingly random intervals! We will get a call from a user (different users) up to 2 weeks later claiming a double login is required. I check the Internet Admin MMC and sure enough, Windows Integrated is once again chosen as the authentication method. No human hand (at least none have admitted) makes this change in the website security. This has happened 4 times now within the last 5 months.

Nothing in the logfiles of the machine seems to indicate a recurring event that makes this change, but SOMETHING has to make it switch. It's a real bother. When Windows Intgrated is suddenly set for the subfolders, Mac and UNIX users cannot get OWA to function correctly.

Any thoughts, anyone?
 
Sort by date Sort by votes
I have the same problem with the IIS setting changing back to integrated after a rebooting. But not just changing for the heck of it at any point in time.

OWA is the only site and we used the IIS lockdown tool (except the URL scan part). Also configured for SSL and to be the IM router.
 
Upvote 0 Downvote
You have to change it from Exchange System Manager...

It changes back via a process called DS2MB. Basically AD rights it back to the IIS metabase.

Go under the Server in ESM -> Protocols -> HTTP

You will see the directories. Change it there. Dan
Microsoft Exchange Support @ Microsoft
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

CorbinMyMan
  • Locked
  • Question
SP3 Rollup 23 not appearing in Windows Update
Replies
0
Views
258
CorbinMyMan
CorbinMyMan
macdiesel1
  • Locked
  • Question
Demoted Domain Controller and now Exchange 2013 keeps getting topology errors!
Replies
3
Views
374
macdiesel1
macdiesel1
Dom606
  • Locked
  • Question
Windows Terminal Services 2008 and Exchange 1
Replies
2
Views
169
Dom606
Dom606
skipzoid
  • Locked
  • Question
Exchange 2007 32 Bit on Windows 2003 Standard Server
Replies
2
Views
167
jkupski
jkupski
mpeter1978
  • Locked
  • Question
mailbox keeps getting over the limit even after changing the default.
Replies
1
Views
121
Zelandakh
Zelandakh

Part and Inventory Search

Sponsor

Back
Top